Any issues with Pester are generally fixed in the latest releases. There has been no specific security patches to this date.
| Version | Supported | Notes |
|---|---|---|
| 5.1.x | ✅ | Actively maintained |
| 5.0.x | ❌ | Critical issues fixed. |
| 4.0.x | ✅ | Critical issues fixed. |
| < 4.0 | ❌ | Critical issues fixed. |
| 3.x.x | ❌ | Not actively maintaned |
Pester uses a small library of C# code that depends on the .NET Framework. There are currently no known security vulnerabilities with the Pester Powershell framework.
To report security vulnerabilities in Powershell, .NET, Windows, or other Microsoft Products & Services, visit the following links: https://www.microsoft.com/en-us/msrc/faqs-report-an-issue https://www.microsoft.com/en-us/msrc/bounty
To report a security vulnerability in Pester framework, email security@pester.dev and ping me on twitter